id summary reporter owner description type status priority milestone component version severity resolution keywords cc focuses
11953 wp_nonce_field() does not pass the result of wp_referer_field() webduo ryan "When using `wp_nonce_field` in ""no echo mode"" ($echo argument is set to false) and with the $referer variable set to true (which is the default) the result of `wp_referer_field` function is not added to $nonce_field which is returned at the end of `wp_nonce_field`.
I'd expect `wp_nonce_field` to return the same content what it echoes, but now it outputs two fields and passes just one (without the referer field). So:
{{{
#!php
wp_nonce_field('some-action-name');
}}}
results in something like
{{{
#!text/html
}}}
where
{{{
#!php
wp_nonce_field('some-action-name', '_wpnonce', true, false);
}}}
returns only
{{{
#!text/html
}}}" defect (bug) closed normal 3.2 Security 2.9.1 normal fixed has-patch commit